SUPPLEMENTAL AMENDMENT 
U.S. Application No. 10/588,657 



Atty. Docket No.: 34-134 
Art Unit No.: 2166 



AMENDMENTS TO THE CLAIMS: 

This listing of claims will replace all prior versions, and listings, of claims in the 
application: 

Claims 1-63 (Cancelled) 

64, (Previously presented) A method of storing a data set on a storage device having one 
or more portions of random data, comprising: 

determining, using a process dependent upon a user input passphrase, a first storage 
writing process starting location at a first offset within a portion of random data for initiating a 
first storage writing process for storing a file index; 

determining a second storage writing process starting location at a second offset within a 
portion of random data for initiating a second storage writing process for storing the data set, 
said second offset determined using a process that is independent of a process used to generate 
said first offset; 

encrypting the data set; 

writing the encrypted data set using the second storage writing process beginning at the 
second storage writing process starting location in a portion of random data; 

creating a file index including an entry in the file index in respect of the data set, the 
entry comprising an indication of the second storage writing process starting location; 

encrypting the file index; and 

writing the encrypted file index using the first storage writing process beginning at the 
first storage writing process starting location in the file of random data. 
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65. (Previously presented) A method of operating a computer to store a data set on a 
storage device, comprising: 

determining a first location within the storage device for initiating a first storage writing 
process for storing a file index; 

determining a second storage writing process starting location at a second offset within 
the storage device for storing the data set, said second offset determined using a process that is 
independent of a process used to generate said first offset; 

encrypting the data set; 

writing the encrypted data set using the second storage writing process beginning at the 
second storage writing process starting location in a portion of random data; 

creating a file index including an entry in the file index in respect of the data set, the 
entry comprising an indication of the second storage writing process starting location; 

encrypting the file index; and 

writing the encrypted file index using the first storage writing process beginning at the 
first storage writing process starting location. 

66. (Previously presented) The method according to claim 64 in which determining the 
first storage writing process starting location for creating the file index comprises adding a 
predetermined offset to the first storage writing process starting location as a beginning of the 
file index. 

67. (Previously presented) The method according to claim 64 wherein the encrypted file 
index is stored only within the portions of random data on the device. 
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68. (Previously presented) The method according to claim 64 in which an encrypted file 
index is stored within one or more portions of random data by writing over random data portions 
within the storage device with encrypted file index data. 

69. (Previously presented) The method according to claim 64 wherein the encrypted 
data set is stored only within the portions of random data. 

70. (Previously presented) The method according to claim 64 in which an encrypted 
data set is stored within one or more portions of random data by writing over random data 
portions within the storage device with the encrypted data set. 

71 . (Previously presented) The method according to claim 64 which further comprises 
using the user input passphrase for generating a key for encrypting the file index. 

72. (Previously presented) The method according to claim 64 in which the passphrase is 
used for generating a key for encrypting the data set. 

73. (Previously presented) The method according to claim 64 in which the passphrase is 
used in selecting the second storage writing process starting location. 

74. (Previously presented) The method according to claim 64 in which at least one of 
the first location within the file of random data, the second location within the file of random 
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data, a key for the file index and a key for the data set is determined by using at least one hash 
function to operate on the user input passphrase. 

75. (Previously presented) The method according to claim 64 in which the passphrase is 
operated on once to produce an output which is used for determining at least two of the first 
location within the file of random data, the second location within the file of random data, a key 
for the file index and a key for the data set. 

76. (Previously presented) The method according to claim 64 in which the passphrase is 
operated on a plurality of times, each operation generating an output for use in determining at 
least one of the first location within the file of random data, the second location within the file of 
random data, a key for the file index and a key for the data set. 

77. (Previously presented) The method according to claim 64 in which a common key is 
used for encrypting the data set and for encrypting the file index. 

78. (Previously presented) The method according to claim 64 which comprises a step of 
storing further sets of data using said passphrase. 

79. (Previously presented) The method according to claim 78 which is such that a 
respective location for each data set is selected, each data set is encrypted and stored at the 
respective location, and respective entries are added to the file index. 
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80. (Previously presented) The method according to claim 64, comprising a step of 
storing further file indexes within the file of random data, each of which indexes is associated 
with a respective passphrase and each of which indexes is encrypted and is stored at a location 
selected in dependence on the respective passphrase. 

81 . (Previously presented) The method according to claim 80 in which respective 
encryption keys are generated from the respective passphrases and these respective keys are used 
for encrypting data sets which are associated with each file index. 

82. (Previously presented) The method according to claim 80 comprising a step of 
selecting the passphrase for, and hence location for, an additional file index with knowledge of 
the respective passphrases corresponding to file indexes already stored in the file of random data 
such that collisions may be avoided. 

83. (Previously presented) The method according to claim 80, in which, where there are 
a plurality of file indexes stored in the file of random data, the method comprises a step of 
selecting a location for an additional data set with knowledge of the respective passphrases 
corresponding to file indexes already stored in the file of random data such that collisions may be 
avoided. 

84. (Previously presented) The method according to claim 80 comprising a step of 
storing additional data sets using a passphrase whilst in ignorance of at least one other existing 



passphrase. 
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85. (Previously presented) The method according to claim 80 comprising a step of 
storing data sets in a predetermined relationship to a respective file index to help prevent 
collisions, for example data sets may be stored adjacent to a respective file index, data sets may 
be stored substantially contiguously to a respective file index, and data sets may be stored at 
locations close to but after a respective file index. 

86. (Previously presented) The method according to claim 64 comprising a step of 
storing data on a storage device carrying a plurality of files of random data. 

87. (Previously presented) The method according to claim 64 in which the file index 
comprises a message authentication code. 

88. (Previously presented) The method according to claim 87 in which the file index 
comprises a message authentication code of all associated data sets so as to facilitate detection of 
tampering. 

89. (Previously presented) The method according to claim 87 in which the file index 
comprises a message authentication code of the file of random data in its entirety for use in 
detecting other usage of the file of random data. 

90. (Previously presented) The method according to claim 64 comprising a step of 
preprocessing the data set prior to encryption. 
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91 . (Previously presented) The method according to claim 64 comprising a step of 
presenting a user with an indication of a location within the file of random data that will be 
selected for the file index when using a predetermined passphrase. 

92. (Previously presented) The method according to claim 91 comprising a step of 
accepting user entered trial passphrases and providing a user with an indication of a location 
within the file of random data that will be selected for the file index for each trial passphrase. 

93. (Previously presented) The method according to claim 91 comprising a further step 
of providing to a user an indication of the regions of the file of random data that are already 
occupied by file indexes having passphrases that have been supplied by a user. 

94. (Previously presented) The method according to claim 64 comprising a step of 
receiving an indication from a user of a location within the file of random data which a user 
desires to use for a file index. 

95. (Previously presented) The method according to claim 94 comprising the step of 
suggesting possible passphrases to a user in response to a user indicating a location within the 
file of random data which a user desires to use for a file index. 

96. (Previously presented) The method according to claim 94 comprising steps of 
receiving a user input passphrase and suggesting a modified passphrase. 
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97. (Previously presented) The method according to claim 96 in which the modification 
of the passphrase is selected so as to at least one of: move a location at which an associated index 
would be stored towards a desired location indicated by a user and strengthen the passphrase. 

98. (Previously presented) The method according to claim 64 comprising a step of 
deleting a data set stored on a storage device. 

99. (Previously presented) The method according to claim 98 comprising a step of 
removing a respective entry from the file index. 

100. (Previously presented) The method according to claim 99 in which the step of 
deleting a data set comprises a step of overwriting the data set with random data as well as 
removing the entry from the file index. 

101. (Previously presented) The method according to claim 98 comprising a step of 
reorganizing data stored in association with a file index when at least one data set referenced in 
that file index is deleted. 

102. (Previously presented) The method according to claim 100 in which the step of 
overwriting the data set comprises a step of using at least one random data and encrypted data 
stored in the file of random data for generating pseudo-random data for overwriting deleted files. 
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103. (Previously presented) The method according to claim 102 in which the method 
comprises a step of using random numbers from the file of random data that would be 
overwritten when adding a data set to replace any pseudo-random values previously used' 
elsewhere within the file of random data. 

104. (Previously presented) A computer storage device for steganographically 
concealing stored information, said device configured with at least one storage area having one 
or more portions of random data containing a file index and a predetermined data set, wherein 
the file index is encrypted and is stored at a first location determined by an algorithmic process 
dependent upon a user passphrase, and the data set is encrypted and is stored at a second location 
determined using a process that is unconstrained by the process used to determine the first 
location, and the file index comprises information indicative of the second location. 

105. (Previously presented) The storage device according to claim 1 04 further including 
application software stored thereon for execution by a computer to enable steganographic storage 
extraction of data sets in the one or more portions of random data. 

1 06. (Previously presented) The storage device according to claim 104 in which the 
passphrase is used to generate a key for at least one of encrypting the file index and encrypting 
the data set. 



107. (Previously presented) The storage device according to claim 104 further 
comprising a software application stored by the storage device, the software comprising 
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instructions that when loaded and executed by a computer cause the computer to perform at least 
one of the following operations: 

accepting a plurality of user input passphrases and generating corresponding 
encryption/decryption keys; 

determining respective storage writing process starting locations for a plurality of storage 
of file indexes; 

encrypting a plurality of file indexes; 

encrypting a plurality of data sets; 

storing a plurality of file indexes; 

determining respective storage writing process starting locations for storing a plurality of 
data sets; 

storing a plurality of data sets; 

accepting one or more user input passphrases and using said one or more user input 
passphrases for locating and decrypting respective file indexes; 

locating one or more encrypted data sets stored within the storage device; 

decrypting one or more encrypted data sets stored within the storage device ; and 

outputting one or more decrypted data sets stored within the storage device as an 
encrypted data set. 

108. (Previously presented) The storage device according to claim 1 04 further including 
a conventional file allocation table stored thereon. 
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109. (Previously presented) The storage device according to claim 104 wherein at least a 
portion of the device comprises a Read Only Memory (ROM). 

1 10. (Previously presented) The storage device according to claim 108 further 
comprising a Read Only Memory (ROM) portion wherein is stored the file allocation table, the 
software and an operating system header file. 

111. (Previously presented) The storage device according to claim 104 wherein the 
device is operable as a removable storage device. 

112. (Previously presented) The storage device according to claim 104 wherein the 
device is assigned a particular identifying serial number, 

1 13. (Previously presented) The storage device according to claim 104 further including 
a unique hard coded identifier data stored in memory contained therein, said identifier data for 
use by a computer for at least one of: 

a) an encryption process used for encrypting at least one of the file index and the data; 

and 

b) a decryption process used for decrypting at least one of the file index and the data. 

114. (Previously presented) The storage device according to claim 104 wherein the 
storage device has the appearance of a conventional portable memory storage device. 
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115. (Currently amended) A computer arranged configured under the-control of 
software computer executable program code , said computer e x e cuting software p rogram code 
including instructions for configuring the computer to steganographically storing store a data set 
on a storag e d e vic e within one or more portions of random data contained on said- a digital data 
storage device^]] coupled to said comput e r computer, comprising: 

first storage writing process p rogrammable logic circuitry configured to determine a first 
starting location within a portion of random data on the storage device for initiating a first 
storage writing process for storing a file index; 

second storage writing process p rogrammable logic circuitry configured to determine a 
second storage writing process starting location at a s e cond off s et within a portion of random 
data on the storage device for storing the data set; 

data set encryption p rogrammable logic circuitry configured to encrypt the data set; 

data set storing programmable logic circuitry configured to write foe-an encrypted data 
set using the second storage writing process beginning at the second storage writing process 
starting location in a portion of random data ; 

file index programmable logic circuitry configured to create a file index including an 
entry in the file index in respect of the data set, the entry comprising an indication of a memory 
location within the storage device of the second storage writing process starting location; 

file index encryption p rogrammable logic circuitry configured to encrypt the file index; 

and 

file index storing programmable logic circuitry configured to write the-an encrypted file 
index using the first storage writing process beginning at the first storag e writing proc e ss -starting 
location in the file of random data . 
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1 16. (Currently amended) The computer according to claim 115 further comprising file 
index location indicating p rogrammed logic circuitry configured by said software to provide a 
user with aft- a visual indication of a location within a -the p ortion of random data that will 
determined by said first storage writing process programmable logic circuitry to be used for 
storing the file index corr e sponding to when a particular passphrase isjnput by a user. 

117. (Currently amended) The computer according to claim 1 15 which is arranged 
under the control of software further comprising passphrase input processing programmed logic 
circuitry configured t o accept user entered trial passphrases and provide a user with an indication 
of a location within the4i4e -a portion of random data that will be sel e cted d etermined for storing 
the file index for each trial passphrase entered by a user . 

118. (Currently amended) The computer according to claim 1 15 which is arrang e d 
under the control of s oftware further comprising file index location programmed logic circuitry 
configured to provide a user an indication of regions o f the file portions of random data that are 
already occupied by file indexes havmg- associated with p assphrases that have be e n supplied by a 
user. 

119. (Currently amended) The computer according to claim 1 15 which is arranged 
under the control of softwar e further comprising passphrase suggestion programmed logic 
circuitry configured to suggest possible passphrases to a user in response to a user indicating a 
location within the file a portion of random data which a user desires to use for storing a file 
index. 
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120. (Currently amended) The computer according to claim 1 16 which is arranged 
under th e control of softwar e further comprising user interface programmed logic circuitry 
configured to prese n t provide a user interface for displaying the visual indications on a display 
device connected to the computer . 

121. (Currently amended) The computer according to claim 120 in which the user 
interface is arranged programmed logic circuitry is configured so that a user can use a pointing 
device to indicate select a location within jhe-ftle- a portion of random data which a user desir e s 
to use for storing a file index. 

122. (Previously presented) A method of extracting a data set steganographically stored 
on a storage device having one or more portions random data containing a file index and a 
predetermined data set , wherein the file index is encrypted and is stored at a first location 
determined by an algorithmic process dependent upon a user input passphrase, and the data set is 
encrypted and is stored at a second location determined using a process that is unconstrained by 
the process used to determine the first location, and the file index comprises information 
indicative of the second location, comprising: 

using a user input passphrase to determine a location for a file index based upon the user 
input passphrase; 

decrypting the file index; 

identifying a location of a data set from the decrypted file index; and 
decrypting the data set stored at the identified location. 
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123. (Previously presented) A computer arranged under the control of software to 
extract data using The method according to claim 122. 

124. (Previously presented) A method of storing a data set on a storage device, 
comprising: 

determining a first location within the storage device for initiating a first storage writing 
process for storing a file index; 

determining a second storage writing process starting location at a second offset within 
the storage device for storing the data set, said second offset determined using a process that is 
independent of a process used to generate said first offset; 

encrypting the data set; 

writing the encrypted data set using the second storage writing process beginning at the 
second storage writing process starting location in a portion of random data; 

creating a file index including an entry in the file index in respect of the data set ? the 
entry comprising an indication of the second storage writing process starting location; 

encrypting the file index; and 

writing the encrypted file index using the first storage writing process beginning at the 
first storage writing process starting location, wherein the method further comprises , prior to a 
user finalizing the user input passphrase, accepting input of at least one user input trial 
passphrase and providing a user with an indication of a location within the portion of random 
data that will be determined for creating a file index associated with the at least one user input 
trial passphrase. 
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125. (Previously presented) A computer readable data storage medium, said storage 
medium storing a computer program comprising code portions which when executed a computer 
cause the computer to perform steps of: 

determining a first location within the storage device for initiating a first storage writing 
process for storing a file index; 

determining a second storage writing process starting location at a second offset within 
the storage device for storing the data set, said second offset determined using a process that is 
independent of a process used to determine said first offset; 

encrypting the data set; 

writing the encrypted data set using the second storage writing process beginning at the 
second storage writing process starting location in a portion of random data; 

creating a file index including an entry in the file index in respect of the data set, the 
entry comprising an indication of the second storage writing process starting location; 

encrypting the file index; and 

writing the encrypted file index using the first storage writing process beginning at the 
first storage writing process starting location in the file of random data. 

126. (Currently amended) A method of storing a data set on a computer accessible 
digital data storage device , comprising: having 

initializing one or more portions of a digital data storage area that ar o initializ e d of the 
storage device with random data; oomprising the steps of: 

determining a first writing process starting location within a data storage portion 
initialized with random data for creating a file index; 
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determining a second writing process starting location within a data storage portion 
initialized with random data for storing the data set, said second writing process starting location 
determined using a process that is unconstrained by a process used to determine said first writing 
process starting location; 

encrypting the data set; 

storing the encrypted data set beginning at the second writing process starting location, 
using only data storage portions initialized with random data; 

making an entry in the creating a file index indicative of which portions of the data 
storage device initialized with random data are te-be-used to store the encrypted data set , wh e rein 
an indication of the second writing proc e ss s tarting location i s det e rminable from tho fil e index ; 

encrypting the file index; and 

storing the encrypted file index at th e first selected location in the data storage ar e a 
initialized with random data beginning at the first writing process starting location . 

127. (Currently amended) The method according to claim 126 wherein the step of 
ensuring that an indication of the second sel e cted location is determinable from the file ind e x 
comprises the s tep o f further comprising: 

making an entry in the file index in respect of the data set, the entry comprising an 
indication of the second writing process starting se l e cted location. 

128. (Currently amended) The method according to claim 126 wher e in the step of 
selecting a first looation within th e data storage area initialized with random data for storing a 
file index, compris e s 
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th e step of selecting wherein the first writing process starting location from a plurality of 
pred e t e rmined possible locations within th e data storag e area initialized with random data, j s 
determined in dependence efl hupon one efe-of an input receiv e d from information provided by a 
t>seyr- user to a computer accessinfi the storage device and a s e lection computing implemented 
determining p rocess which is independent of user input. 

129. (Currently amended) The method according to claim 126 wherein the st e p of 
s e lecting a first location within the data storage area initialized with random data for s toring a 
file, compris e s steps of s electing the first writing process starting location in dependence on is 
dependent upon a user input passphrase and associating the file index is associated with the user 
input passphrase. 

130. (Currently amended) The method according to claim 129 wherein said data set is 
stored under prot e ction of said user input passphrase and the method comprisin g a further step of 
further comprising: 

storing a second data set on the storage device under protection of wherein a writing 
process for storing the second data set is dependent upon a second user input passphrase, the step 
process of storing the second data set on the storage device comprising s teps of : 

selccting determining , in dependence on the second user input passphrase, a third writing 
process starting location within the-adata storage afea- portion initialized with random data for 
storing c reating a second file index; 

s e lecting determining a fourth writing process starting location within the-a_data storage 
area -portion initialized with random data for storing the second data set; 
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encrypting the second data set; 

storing the encrypted second data set beginning at the fourth selected writing process 
starting location in the-a_data storage area initialized with random data; 

ensuring that an indication of the fourth selected location is det e rminable from the s econd 
file index creating a file index indicative of which portion of the data storage device are used to 
store the encrypted second data set ; 

encrypting the second file index; and 

storing the encrypted second file index at the third s e lected location in the data storag e 
area initialized with random data, and comprising, b e fore th e st e p of e n c rypting the second fil e 
index, a further step of recording in the s econd file index an indication of which parts of the data 
storage area initialized with random data will he used to store s aid second data set beginning at 
the third writing process starting location . 

131. (Currently amended) The method according to claim 1 26 wherein the one or more 
portions of the data storage area initialized with random data is-are reserved only for use in 
storing data. 

132. (Currently amended) The method according to claim 126 wherein one or more 
portions of the data storage area initialized with random data compris es comprise a file of 
random data which that is managed by a conventional file system management process on a 
computer accessing the storage device . 
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133. (Currently amended) A removable digital data storage device comprising a for 
concealing stored information, said device having at least one data storage area initialized with 
containing random digital data, wherein and having a file index and a data set tha t are 
steganographicallv stored in the data storage area initialized with containing random digital, data, 
the file index fe -being e ncrypted and stored at a first location located at one or mo r e first storage 
locations within the data storage area initialized with containing random digital data, the data set 
is -being encrypted and stored at a second location located at one or more second storage 
locations within the data storage area initialized with containing random digital data, the file 
index comprises an entry in respect of th e data s e t, - th e e ntry comprising an indication of the 
second location within the data storage area initialized with random data, and th e file index 
comprises an indication of including information for identifying said second storage locations 
and indicating which parts of the data storage area initialized with containing random digital data 
are ra-Bse- being used to store said data set. 

134. (Currently amended) A removabl e- digital data storage device carrying o n which is 
stored a software application program and comprising a which includes at least one data storage 
area initialized with random data, the software application program comprising computer 
executable code portions which when loaded and run on executed by a computer cause the 
computer to execute a method of storing a data set on the storag e device, the method comprising 
th e st e p s of : 

fowling n first lonntion within th e rinta r ,tomge - ar e a initialized with determining one or 
more first storage locations within the random data to be used for storing a file index; 
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selecting q seeond location within the data storag e ar e a initialized with determining one 
or more second storage locations within the random data to be used for storing the-adata set , said 
one or more second storage locations being determined by a process which is not constrained by 
a process used to determine said one or more first storage locations : 

e ncrypting encrypt the data set; 



area initialized with random data one or more of said second storage locations ; 

e nsuring that an indication of th e second selected location is d e t e rminabl e from the file 
inde xcreate a file index containing information for identifying said one or more second storage 
locations within the random data and for indicating which parts of the data storage area 
initialized with random data are being used to store the data set ; 

e ncrypting encrypt the file index; and 



are initialized with random data, and comprising, befor e th e step of encrypting the file ind e x, a 
further step of r e cording in th e fil e index an indication of which parts of th e data storage area 
initializ e d with random data will bo used to stor e said - data set said one or more first storage 
locations . 

135. (Previously presented) A method of storing a data set on a storage device having 
one or more portions of random data, comprising: 

determining a first storage writing process starting location at a first offset within a 
portion of random data for initiating a first storage writing process for storing a data set; 




-sore an encrypted data set at th e s e cond select e d location in th e data storage 




- store an encrypted file index at the first select e d location in the data s torage 
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determining a second storage writing process starting location at a second offset within a 
portion of random data for initiating a second storage writing process that creates a file index, 
said second offset determined independently from a process used to generate the first offset; 

encrypting the data set; 

writing the encrypted data set using said first storage writing process beginning at said 
first storage writing process starting location; 

creating a file index having an entry in respect of the data set, the entry comprising at 
least an indication of the first storage writing process starting location; 

encrypting the file index; and 

writing the encrypted file index using said second storage writing process beginning at 
said second storage writing process starting location. 

136. (Previously presented) The method of claim 135 wherein said second offset is 
determined using an algorithm that is dependent upon an input passphrase. 
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